prefork2d ago

Updates to GitHub Copilot interaction data usage policy

https://github.blog/news-insights/company-news/updates-to-github-copilot-interaction-data-usage-policy/

Updates to GitHub Copilot interaction data usage policy

From April 24 onward, interaction data from Copilot Free, Pro, and Pro+ users will be used to train and improve our AI models unless they opt out.

The GitHub Blog
Show threadQuadrupleA

Fun fact: Copilot gives you no way to ignore sensitive files with API keys, passwords, DB credentials, etc.: https://github.com/orgs/community/discussions/11254#discussi...

So by default you send all this to Microsoft by opening your IDE.

Option for disabling Copilot in specific files · community · Discussion #11254

Hey, I'm seeking an option to disable the Copilot in specific files. I want to avoid disabling it for a whole language, just disable in e.g. some JSON-based configuration files (where credentials m...

GitHub
Mar 25 at 9:51pmWeb
Show threadmalnourish2d ago
I swear I just set up enterprise and org level ignore paths.
Show threadveverkap2d ago
Yeah, it's a Copilot Business/Enterprise feature
Show thread0xbadcafebee2d ago

Separate fun fact: Gemini CLI blocks env vars with strings like 'AUTH' in the name. They have two separate configuration options that both let you allow specific env vars. Neither work (bad vibe coding). Tried opening an issue and a PR, and two separate vibe-coding bots picked up my issue and wrote PRs, but nobody has looked at them. Bug's still there, so can't do git code signing via ssh agent socket. Only choice is to do the less-secure, not-signed git commits.

On top of that, Gemini 3 refuses to refactor open source code, even if you fork it, if Gemini thinks your changes would violate the spirit of the intent of the original developers in a safety/security context. Even if you think you're actually making it more secure, but Gemini doesn't, it won't write your code.

Show threadnulld3v2d ago
Sadly, this issue is systemic: https://github.com/openai/codex/issues/2847